Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7B8D1A9CA74D11EF8B381090762E951A.roa
File: 7B8D1A9CA74D11EF8B381090762E951A.roa (raw, json)
Hash identifier: NloyZ9UNvRZ2oxtlFGEMVeajFNr32cMKUZ1XfnNu9/c=
Subject key identifier: C8:64:05:7A:4F:3F:AF:5C:E0:C7:32:5E:27:68:5A:C6:8B:0E:E3:0F
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: D6C6
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7B8D1A9CA74D11EF8B381090762E951A.roa
Signing time: Wed 20 Nov 2024 14:41:10 +0000
ROA not before: Wed 20 Nov 2024 14:41:06 +0000
ROA not after: Sat 30 Nov 2024 14:41:06 +0000
asID: 202656
IP address blocks: 45.199.225.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Sat 23 Nov 2024 00:21:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 54982 (0xd6c6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Nov 20 14:41:06 2024 GMT
Not After : Nov 30 14:41:06 2024 GMT
Subject: CN=673df506-e856
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9c:96:bd:d5:0d:c6:11:43:ea:34:82:72:5a:5d:
ad:95:a1:ff:36:76:a8:39:86:6d:2e:43:1f:1c:61:
66:e6:54:a0:36:8b:b3:a8:4c:37:79:81:c4:70:48:
33:f5:7d:26:63:ae:40:c1:4f:7c:46:5e:e1:32:77:
cb:55:2d:01:15:1c:15:4b:bb:7a:71:00:55:cf:50:
2c:82:a9:d0:85:92:19:19:2c:f2:ed:29:b7:7b:0c:
7a:17:b7:43:fb:53:fa:9a:e9:f0:e7:65:45:9c:3f:
09:89:43:79:13:36:b0:d3:5e:b6:56:dd:e3:0c:b9:
7e:8a:4b:c1:1f:fa:a9:49:db:cc:5b:b8:41:0a:b9:
6a:fc:e1:1e:a4:2d:c8:f6:7a:6a:66:05:f9:5f:c2:
50:a0:37:ba:1b:e2:5e:a3:8c:83:e3:2f:01:ec:7e:
d6:ad:1a:bf:da:03:45:b8:94:12:42:50:1d:b2:d9:
44:7f:b1:40:17:c7:c4:8c:ab:d7:99:9f:37:d5:4f:
7c:d5:84:6d:90:3d:58:b1:f7:8e:42:df:54:dd:78:
08:78:7e:dc:e9:e1:3b:f2:36:7c:43:c2:57:08:76:
02:3c:c6:35:3f:80:6a:32:87:b8:3a:29:ba:e7:91:
fe:1a:7b:86:5b:ed:e6:3a:ba:8b:3d:db:a8:ed:82:
56:d3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C8:64:05:7A:4F:3F:AF:5C:E0:C7:32:5E:27:68:5A:C6:8B:0E:E3:0F
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/7B8D1A9CA74D11EF8B381090762E951A.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.199.225.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:ba:39:ed:d6:e2:c6:81:60:f7:e4:c6:12:03:8e:84:0e:dc:
e6:ba:1b:54:7b:16:29:db:ae:15:09:04:8b:7c:ed:b2:c0:9b:
2a:3a:86:d1:59:12:c9:a7:50:19:ef:41:0b:15:0e:fe:c4:46:
44:c7:dc:23:45:b0:06:9a:d9:f4:ae:7f:0f:80:18:b4:fa:05:
4d:9b:a6:17:bc:4c:ad:f9:d5:63:c8:ac:07:cf:7b:5d:ad:a4:
66:d3:1e:cd:29:48:57:42:6a:cd:9a:de:9f:a5:5c:1b:ed:20:
1d:72:82:8a:93:68:01:d6:52:e9:74:67:ac:5d:e5:47:a8:56:
89:52:a7:34:ad:0e:88:ce:02:69:d8:3e:a6:81:ab:5a:89:c8:
57:48:8c:bf:b3:bb:13:c7:fb:8e:30:d1:14:e7:cb:67:99:a6:
8c:a0:b7:d2:bd:fd:11:49:31:da:b4:43:1c:d7:d8:00:ff:64:
09:03:2d:86:86:b7:10:6c:6a:7f:2e:3d:12:73:94:1c:75:08:
04:ad:03:ac:9a:98:a6:9a:d1:fe:30:ba:ae:9d:2c:f6:a1:bd:
a9:28:48:dc:50:33:c8:c9:3a:50:b6:ff:98:45:86:65:23:d5:
2c:fb:83:aa:77:c6:66:ae:38:58:5b:e4:63:c0:73:b6:0d:81:
ed:b2:6d:cd
-----BEGIN CERTIFICATE-----
MIIFgTCCBGmgAwIBAgIDANbGMA0GCSqGSIb3DQEBCwUAMEgxEzARBgNVBAMTCkYz
NjhGMkQwQVIxMTAvBgNVBAUTKDc5N0Q4OEQ4MTNFMjBGRkY5ODJDQzc0MTlFOTY5
QkFFQTZCRkQ2OUIwHhcNMjQxMTIwMTQ0MTA2WhcNMjQxMTMwMTQ0MTA2WjAYMRYw
FAYDVQQDEw02NzNkZjUwNi1lODU2MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEAnJa91Q3GEUPqNIJyWl2tlaH/NnaoOYZtLkMfHGFm5lSgNouzqEw3eYHE
cEgz9X0mY65AwU98Rl7hMnfLVS0BFRwVS7t6cQBVz1AsgqnQhZIZGSzy7Sm3ewx6
F7dD+1P6munw52VFnD8JiUN5Ezaw0162Vt3jDLl+ikvBH/qpSdvMW7hBCrlq/OEe
pC3I9npqZgX5X8JQoDe6G+Jeo4yD4y8B7H7WrRq/2gNFuJQSQlAdstlEf7FAF8fE
jKvXmZ831U981YRtkD1YsfeOQt9U3XgIeH7c6eE78jZ8Q8JXCHYCPMY1P4BqMoe4
Oim655H+GnuGW+3mOrqLPduo7YJW0wIDAQABo4ICojCCAp4wHQYDVR0OBBYEFMhk
BXpPP69c4McyXidoWsaLDuMPMB8GA1UdIwQYMBaAFHl9iNgT4g//mCzHQZ6Wm66m
v9abMA4GA1UdDwEB/wQEAwIHgDCBlQYDVR0fBIGNMIGKMIGHoIGEoIGBhn9yc3lu
YzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJfcmVwb3NpdG9y
eS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFFQTIyOC9lWDJJ
MkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY3JsMGQGCCsGAQUFBwEBBFgwVjBUBggr
BgEFBQcwAoZIcnN5bmM6Ly9ycGtpLmFmcmluaWMubmV0L3JlcG9zaXRvcnkvYXJp
bi9lWDJJMkJQaURfLVlMTWRCbnBhYnJxYV8xcHMuY2VyME8GA1UdIAEB/wRFMEMw
QQYIKwYBBQUHDgIwNTAzBggrBgEFBQcCARYnaHR0cHM6Ly9ycGtpLmFmcmluaWMu
bmV0L3BvbGljeS9DUFMucGRmMIHbBggrBgEFBQcBCwSBzjCByzCBkQYIKwYBBQUH
MAuGgYRyc3luYzovL3Jwa2kuYWZyaW5pYy5uZXQvcmVwb3NpdG9yeS9tZW1iZXJf
cmVwb3NpdG9yeS9GMzY4RjJEMC85MkY4NkUxQzZFMDUxMUU4QTFCNTg1NEJGOEFF
QTIyOC83QjhEMUE5Q0E3NEQxMUVGOEIzODEwOTA3NjJFOTUxQS5yb2EwNQYIKwYB
BQUHMA2GKWh0dHBzOi8vcnJkcC5hZnJpbmljLm5ldC9ub3RpZmljYXRpb24ueG1s
MB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQALcfhMA0GCSqGSIb3DQEBCwUA
A4IBAQALujnt1uLGgWD35MYSA46EDtzmuhtUexYp264VCQSLfO2ywJsqOobRWRLJ
p1AZ70ELFQ7+xEZEx9wjRbAGmtn0rn8PgBi0+gVNm6YXvEyt+dVjyKwHz3tdraRm
0x7NKUhXQmrNmt6fpVwb7SAdcoKKk2gB1lLpdGesXeVHqFaJUqc0rQ6IzgJp2D6m
gataichXSIy/s7sTx/uOMNEU58tnmaaMoLfSvf0RSTHatEMc19gA/2QJAy2GhrcQ
bGp/Lj0Sc5QcdQgErQOsmpimmtH+MLqunSz2ob2pKEjcUDPIyTpQtv+YRYZlI9Us
+4Oqd8ZmrjhYW+RjwHO2DYHtsm3N
-----END CERTIFICATE-----
Generated at Thu Nov 21 11:05:36 2024 by rpki-client on console-fra.rpki-client.org